RBS 2011 Annual Report Download - page 239

Download and view the complete annual report

Please find page 239 of the 2011 RBS annual report below. You can navigate through the pages in the report by either clicking on the pages listed below, or by using the keyword search tool below to find specific information within the annual report.

Page out of 490

  • 1
  • 2
  • 3
  • 4
  • 5
  • 6
  • 7
  • 8
  • 9
  • 10
  • 11
  • 12
  • 13
  • 14
  • 15
  • 16
  • 17
  • 18
  • 19
  • 20
  • 21
  • 22
  • 23
  • 24
  • 25
  • 26
  • 27
  • 28
  • 29
  • 30
  • 31
  • 32
  • 33
  • 34
  • 35
  • 36
  • 37
  • 38
  • 39
  • 40
  • 41
  • 42
  • 43
  • 44
  • 45
  • 46
  • 47
  • 48
  • 49
  • 50
  • 51
  • 52
  • 53
  • 54
  • 55
  • 56
  • 57
  • 58
  • 59
  • 60
  • 61
  • 62
  • 63
  • 64
  • 65
  • 66
  • 67
  • 68
  • 69
  • 70
  • 71
  • 72
  • 73
  • 74
  • 75
  • 76
  • 77
  • 78
  • 79
  • 80
  • 81
  • 82
  • 83
  • 84
  • 85
  • 86
  • 87
  • 88
  • 89
  • 90
  • 91
  • 92
  • 93
  • 94
  • 95
  • 96
  • 97
  • 98
  • 99
  • 100
  • 101
  • 102
  • 103
  • 104
  • 105
  • 106
  • 107
  • 108
  • 109
  • 110
  • 111
  • 112
  • 113
  • 114
  • 115
  • 116
  • 117
  • 118
  • 119
  • 120
  • 121
  • 122
  • 123
  • 124
  • 125
  • 126
  • 127
  • 128
  • 129
  • 130
  • 131
  • 132
  • 133
  • 134
  • 135
  • 136
  • 137
  • 138
  • 139
  • 140
  • 141
  • 142
  • 143
  • 144
  • 145
  • 146
  • 147
  • 148
  • 149
  • 150
  • 151
  • 152
  • 153
  • 154
  • 155
  • 156
  • 157
  • 158
  • 159
  • 160
  • 161
  • 162
  • 163
  • 164
  • 165
  • 166
  • 167
  • 168
  • 169
  • 170
  • 171
  • 172
  • 173
  • 174
  • 175
  • 176
  • 177
  • 178
  • 179
  • 180
  • 181
  • 182
  • 183
  • 184
  • 185
  • 186
  • 187
  • 188
  • 189
  • 190
  • 191
  • 192
  • 193
  • 194
  • 195
  • 196
  • 197
  • 198
  • 199
  • 200
  • 201
  • 202
  • 203
  • 204
  • 205
  • 206
  • 207
  • 208
  • 209
  • 210
  • 211
  • 212
  • 213
  • 214
  • 215
  • 216
  • 217
  • 218
  • 219
  • 220
  • 221
  • 222
  • 223
  • 224
  • 225
  • 226
  • 227
  • 228
  • 229
  • 230
  • 231
  • 232
  • 233
  • 234
  • 235
  • 236
  • 237
  • 238
  • 239
  • 240
  • 241
  • 242
  • 243
  • 244
  • 245
  • 246
  • 247
  • 248
  • 249
  • 250
  • 251
  • 252
  • 253
  • 254
  • 255
  • 256
  • 257
  • 258
  • 259
  • 260
  • 261
  • 262
  • 263
  • 264
  • 265
  • 266
  • 267
  • 268
  • 269
  • 270
  • 271
  • 272
  • 273
  • 274
  • 275
  • 276
  • 277
  • 278
  • 279
  • 280
  • 281
  • 282
  • 283
  • 284
  • 285
  • 286
  • 287
  • 288
  • 289
  • 290
  • 291
  • 292
  • 293
  • 294
  • 295
  • 296
  • 297
  • 298
  • 299
  • 300
  • 301
  • 302
  • 303
  • 304
  • 305
  • 306
  • 307
  • 308
  • 309
  • 310
  • 311
  • 312
  • 313
  • 314
  • 315
  • 316
  • 317
  • 318
  • 319
  • 320
  • 321
  • 322
  • 323
  • 324
  • 325
  • 326
  • 327
  • 328
  • 329
  • 330
  • 331
  • 332
  • 333
  • 334
  • 335
  • 336
  • 337
  • 338
  • 339
  • 340
  • 341
  • 342
  • 343
  • 344
  • 345
  • 346
  • 347
  • 348
  • 349
  • 350
  • 351
  • 352
  • 353
  • 354
  • 355
  • 356
  • 357
  • 358
  • 359
  • 360
  • 361
  • 362
  • 363
  • 364
  • 365
  • 366
  • 367
  • 368
  • 369
  • 370
  • 371
  • 372
  • 373
  • 374
  • 375
  • 376
  • 377
  • 378
  • 379
  • 380
  • 381
  • 382
  • 383
  • 384
  • 385
  • 386
  • 387
  • 388
  • 389
  • 390
  • 391
  • 392
  • 393
  • 394
  • 395
  • 396
  • 397
  • 398
  • 399
  • 400
  • 401
  • 402
  • 403
  • 404
  • 405
  • 406
  • 407
  • 408
  • 409
  • 410
  • 411
  • 412
  • 413
  • 414
  • 415
  • 416
  • 417
  • 418
  • 419
  • 420
  • 421
  • 422
  • 423
  • 424
  • 425
  • 426
  • 427
  • 428
  • 429
  • 430
  • 431
  • 432
  • 433
  • 434
  • 435
  • 436
  • 437
  • 438
  • 439
  • 440
  • 441
  • 442
  • 443
  • 444
  • 445
  • 446
  • 447
  • 448
  • 449
  • 450
  • 451
  • 452
  • 453
  • 454
  • 455
  • 456
  • 457
  • 458
  • 459
  • 460
  • 461
  • 462
  • 463
  • 464
  • 465
  • 466
  • 467
  • 468
  • 469
  • 470
  • 471
  • 472
  • 473
  • 474
  • 475
  • 476
  • 477
  • 478
  • 479
  • 480
  • 481
  • 482
  • 483
  • 484
  • 485
  • 486
  • 487
  • 488
  • 489
  • 490

RBS Group 2011 237
Governance, structure and risk appetite
Governance and structure
Group Operational Risk is an independent function reporting to the
Deputy Group Chief Risk Officer. Group Operational Risk is responsible
for the design and maintenance of the operational risk policy standards
(ORPS).
The ORPS are incorporated in the Group Policy Framework (GPF), they
provide the direction for delivering effective operational risk management
and are designed to allow the consistent identification, assessment,
management, monitoring and reporting of operational risk across the
Group.
The Operational Risk Executive Committee which was formed in January
2011, oversees the operational risk framework and profile of the Group in
line with the agreed risk appetite. It provides guidance, oversight and
advice. It also escalates and reports any issues or areas of concern to
the Board Risk Committee and to other senior committees.
Risk appetite
The Group’s operational risk appetite statement is agreed by the Group
Board. It comprises a number of specific measures of risk, such as:
xthe maximum operational risk losses the Group is prepared to
accept. This is expressed as a percentage of the Group’s estimated
gross income for the year ahead; or
xthe value of a single extreme but plausible operational impact.
These are identified and assessed through the scenario analysis
programme (refer to Scenario analysis below).
To ensure the Group operates within the set risk appetite, the high-level
statements are supplemented by specific tolerances for different types of
operational risk. The GPF sets out how to manage risk within acceptable
limits, which in turn enables the Group to operate within the overall risk
appetite and the specific tolerances. The Group has a zero tolerance for
risks such as breaches of laws and regulations.
Operational risk cycle and key management tools
The operational risk cycle comprises four stages:
xIdentification of risks;
xAssessment or measurement of the scale of risks;
xManagement or control of risks to prevent their recurrence or
minimise the potential impact; and
xMonitoring and reporting of risks.
Although the operational risk tools encompass all stages of the risk cycle,
they can be broadly categorised as follows:
Identification and assessment
Risk and control assessments
Controls that are effective without being excessive ensure the Group
retains its reputation for efficient customer service and security. Risk and
control assessments are used to identify and assess material operational
risks and key controls across all business areas. The process is designed
to ensure that risks are effectively managed in line with stated risk
appetite, prioritised and documented. Controls are tested frequently with
aview to ensuring they remain fit for purpose and operate effectively. The
Group’s risk assessment methodology was enhanced during 2011 to
ensure a more consistent approach to identifying risks and their
associated controls and measuring expected loss. Risk assessments
consider the new firm-wide taxonomy and will soon be captured in the
Group-wide repository for operational risk.
Risk assessments are often conducted in a workshop environment,
bringing together subject matter experts from across the division and key
functions. By sharing expertise, they can identify improvements to risk
identification, measurement and control. Risk governance is reviewed
regularly ensuring that there is clarity and ownership of key risk areas.
Through coming together and sharing knowledge, participants gain a
broader understanding of how their work fits together.
Group new product approval process
The Group’s new product approval process ensures there is a consistent
process to identify, assess and approve the risks associated with new
products.
Following the conclusion of reviews conducted during 2011,
enhancements will be made during 2012 to the product governance
forums, to provide earlier engagement between the business, Group and
divisional risk teams and subject matter experts when assessing whether
the risks associated with new products are in line with appetite. The
forums will be supported by an upgrade to the Group’s key tools used to
manage and report on new product approval.
Scenario analysis
Scenario analysis is used to assess the possible impact of extreme but
plausible operational risk loss events. It provides a forward-looking basis
for managing exposures beyond the Group's risk appetite. The
methodology provides a structured and consistent approach to scenario
scoping and measurement. A significant portfolio of scenarios was
developed in 2011 across divisions, covering material risks to which the
Group is exposed. Group-wide scenarios are centrally scoped and
workshops are facilitated by Group Operational Risk in conjunction with
functions and policy owners, before being assessed by divisions to derive
specific impact estimates. This also allows the Group to review
operational risk impacts as they arise from macroeconomic stresses (e.g.
eurozone distress) in a time-efficient and effective manner.